The SAML XML.org web site is not longer accepting new posts. Information on this page is preserved for legacy purposes only. For current information on SAML, please see the OASIS Security Services Technical Committee Wiki.
Using SAML
SAML and .Net : How to start?
Hello,
I'm a newbie.
I want to consume a web-service of a partner application using C# (Framework 2).
They use SAML for single-signon and I need to integrate with it.
Can anyone direct me to a good newbie/dummy resource with instructions on how to create a certificate and consume the web-service?
Thanks in advanced!
Yuval.
N-tier usage of SAML in the backend
Dear all,
after lots of recherche, I did not find a general, standards based solution for the following problem:
I am implementing SAML for a SOA system, where we would like to use it in addition to Kerberos based delegation model. The problem with Kerberos is that its infrastrucutres are often tied to a specific local environment (like Active Directory).
Where is the XSD for the SAML 2.0 Action Namespace Identifiers?
Hello, in the Assertions and Protocols for SAML 2.0 guide[1], in Section 8.1, there is a listing of the Action Namespace Identifiers (urn:oasis:names:tc:SAML:1.0:action:rwedc, urn:oasis:names:tc:SAML:1.0:action:ghpp, etc.) and the accepted values for each--read, write, post, etc.
Question: Are these identifiers (and their accepted values) defined in an XML Schema someplace, or are they just defined in this document? If they are in a Schema, can anyone give me the URL to obtain them? I can't seem to find them here[2], but it could be I'm just looking in the wrong place.
(1) direct communication and (2) forwarding the assertion
Hi,
I'm new to SAML and I have two - hopefully not too silly - questions:
(Question 1)
I understood from the profiles in the standard that when requesting an assertion the relying party (server) never contacts the SAML authority (identity provider) directly but only via the user (client), e.g. by redirect.
My question: Is it also possible that the server contacts the SAML authority directly to request an assertion?
- If not, why not?
- If yes, where can I find this variation in the standard?
SAML 2.0 and WS-Security
I am intending to use the SAML v2 specification by OASIS to generate SAML Assertions and include the same within the SOAP Header of all messages along with a WS Digital Signature. The intention is to address the 3 of the 4 A's of security to our services landscape.
My concern is that -as for now- OSASIS WS-Security v1.1 provides a SAML Token Profile (http://www.oasis-open.org/specs/#wssprofilesv1.0) but it seems this profile is for SAML v1.1! Therefore, my solution might have a gap!
Is possible / supported to use WS-Security v1.1 along with SAML v2.0??
Search
SUBSCRIBE
RECENT CONTENT
- SAML Wiki Knowledgebase
10 years ago - SAML 2.0 with java Sample
10 years ago - Govt Computer News: 'The power of one password'
10 years ago
1 reply - OASIS approves SAML 2.0 Errata
10 years ago
1 reply - IBM Pushes Federated Identity Management
10 years ago
1 reply - VMware Unveils Horizon App Manager
10 years ago
1 reply
